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A METHOD FOR CONNECTING COMPUTER SYSTEMS 



BACKGROUND OF THE INVENTION 

The present invention relates to a utility 
program to manage security between a storage device and 
a computer, and in particular, to a method of 
5 implementing a utility program and an operation method 
thereof in which security can be managed without 
considering methods of setting a security function 
supported by a storage device, a security function 
supported by a computer, and a security function 

10 supported by a switching device (connecting device) , 
respectively. 

The connection most employed between a 
computer and an external storage device are changing 
from a connection layout in which the storage device 

15 exclusively belongs to the computer to a storage 

network layout in which a plurality of computers are 
connected via a network to a plurality of storage 
devices. One of such storage network layouts in which 
a fibre channel is used as a connecting medium between 

20 the computer and the storage is particularly known as 
"storage area network (SAN)". 

The SAN uses connecting devices called 
"fabric switch" or "a fibre channel switch". The 
fabric switch is a device including a plurality of 

25 fibre channel ports. By connecting computers and 

storage devices via fibre channel cables to ports of 



the fibre channel switch, the computer and storage 
devices can communicate with each other. By connecting 
the fabric switches via a fibre channel cable to each 
other, computers and storage devices connected to the 
5 SAN can communicate via a plurality of fabric switches 
with each other. 

The devices such as storage devices and 
computers constituting the SAN will be referred to as 
nodes hereinbelow. Each node includes at least one 

10 port to be connected to the SAN and is connected via a 
fibre channel cable to a fibre channel switch. 

All nodes connected to the SAN can 
communicate with each other as described above. 
Therefore, a plurality of computers connected to the 

15 SAN can access any areas of the storage devices 

connected to the SAN. In general, it is assumed that 
an operating system running in each computer 
exclusively use a storage area, and it is not 
considered that the storage area can be accessed by 

20 other computers. Therefore, there possibly occurs, for 
example, a case in which when two or more computers 
write data in one storage area of the SAN, first data 
written first in the storage area is by mistake lost by 
a subsequent writing operation in the storage area. 

25 As above, the property of the SAN easily 

causes hindrance to the operating system. There also 
exists a program product which uses the property of the 
SAN so that a plurality of computers share the storage 



area. The system manager must manage the programs such 
that a plurality of computers simultaneously access one 
storage area excepting when such a program product 
described above is used. 

To easily solve this problem, the fabric 
switch generally supports a function called "zoning". 
The zoning function is used to classify the ports of 
the nodes connected to the fabric switch into groups so 
that only the computers belonging to a zone can access 
the storage devices belonging to the zone. To set a 
zone, a value called "worldwide name (WWN) which is a 
unique identifier assigned to a port is used. The SAN 
manager sets worldwide names of storage devices and 
zones which contain worldwide names of computers 
allowed to access the storage devices to the fabric 
switch so that the computers access only the storage 
devices set as above. 

Incidentally, one port can belong to a 
plurality of zones. In this case, the port can 
mutually communicate with the ports contained in all 
zones to which the port belongs. 

On the other hand, the access limiting 
function may be supported by an external storage 
device. A function called "logical unit number (LUN) 
security" or "LUN masking" is used to limit, by use of 
a worldwide name, computers which can access storage 
areas in storage devices. A logical unit number is an 
8-bit value assigned to a storage area and is defined 



by small computer system interface (SCSI) 
specifications used as a communication protocol of the 
SAN. A computer specifies a logical unit number in the 
SCSI protocol to conduct communication via a fibre 
channel with a storage device to thereby access a 
particular storage area. 

However, if an LUN security has been set to 
the storage area, the storage device makes a check 
using a worldwide name to determine whether or not the 
access is issued from a computer allowed to access the 
storage area. If the computer (WWN) is not allowed to 
access the storage area, the storage device rejects the 
access. In this specification, a storage area will be 
referred to as a logical unit according to the 
definition of SCSI. 

There exists a method in which the LUN 
security function is supported or provided by a device 
driver of a fibre channel host bus adapter installed in 
a computer. In this method, the device driver of the 
fibre channel host bus adapter limits an access to a 
logical unit by concealing the logical unit of an SAN 
specified for the operating system. The device driver 
of the fibre channel host bus adapter having the 
function includes an interface to set the LUN security. 

The zoning function and the LUN security 
function are mutually independent of each other. 
Therefore, to change setting of the zoning and the 
setting of the LUN security, the manager must 



respectively operate the fabric switches and the 
storage devices and the computers connected to the 
fabric switches. This disadvantageously takes a long 
period of time. 

To limit the access in the storage area 
network, the access restriction of the zoning function 
and that of the LUN security must integrally match each 
other. For example, even if the manager sets the LUN 
security to allow a computer access a logical unit, 
when the zoning function inhibits the computer from 
accessing the logical unit, the computer cannot access 
the logical unit. This possibly leads to a fatal event 
in which the system including the storage area network 
stops. In the prior art, since the zoning function and 
the LUN security function are independent of each 
other, there exists possibility of such inconsistent 
setting of these functions as described above. 

SUMMARY OF THE INVENTION 

It is therefore an object of the present 
invention, which has been devised to remove the 
problem, to provide a utility program and an operation 
method thereof in which the user can set the zoning 
function and the LUN security function, without paying 
attention to two security levels respectively of these 
functions, in one graphical user interface (GUI) screen 
without causing any inconsistency between these 
functions . 
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To achieve the object according to the 
present invention in a computer system comprising 
computers, storage devices, and a switch unit 
(connection means) including a fibre channel and the 
5 like, management means for managing connection in said 
computer system includes connection display means for 
displaying a state of connection in said computer 
system and input means for changing the connection. 
Said connection state display means can display 

10 computers, storage devices, and the connection state in 
a graphic image, and an area can be created by use of 
said input means. Moreover, there are also disposed 
display position comparing means for comparing a 
graphic image display position of said graphic image of 

15 said computers and said storage devices in said 

connection state display means with a graphic image 
display position of an area created by use of said 
input means and setting means for setting said storage 
devices and said switch unit according to a result of 

20 the comparison by said display position comparing 
means. The setting means is so configured to set 
computers according to necessity. 

Additionally, to create an area by the input 
means, it is possible to create the area overlapped 

25 with other areas. The position and the size of the 
area as well as the position of a graphic image 
representing computers and storage devices can be 
changed by the input means. 



Moreover, the display position comparing 
means includes processing to verify an actual 
relationship of connections between the switch unit, 
storage devices, and computers according to the 
displayed area and a positional relationship between 
graphic images of the computers and storage devices 
contained in the area. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention will be more apparent 
from the following detailed description, when taken in 
conjunction with the accompanying drawings, in which: 

Fig. 1 is a block diagram showing a 
configuration of a computer system; 

Fig. 2 is a block diagram showing a 
configuration of a management computer; 

Fig. 3 is a block diagram showing a 
configuration of a management console computer; 

Fig. 4 is a block diagram showing a 
configuration of a computer to access a logical unit; 

Fig. 5 is a diagram showing a configuration 
of a storage device; 

Fig. 6 is a diagram showing a configuration 
of a fabric switch; 

Fig. 7 is a diagram showing a relationship 
between zones set by a zoning setting operation; 

Fig. 8 is a diagram showing a display example 
on a display of a management console computer; 
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Fig. 9 is a diagram showing a layout of a 
management program; 

Fig. 10 is a diagram showing a layout of a 
management console program; 
5 Fig. 11 is a diagram showing a table of 

symbols shown in Fig. 8; 

Fig. 12 is a diagram showing a table of areas 
shown in Fig. 8; 

Fig. 13 is a diagram showing a table to keep 
10 a relationship between the areas and the symbols shown 
in Fig. 8; 

Fig. 14 is a diagram showing a table to keep 
a relationship between the areas and zones shown in 
Fig. 8; 

15 Fig. 15 is a diagram showing a table to keep 

a relationship between logical unit symbols and storage 

device port symbols shown in Fig. 8; 

Fig. 16 is a diagram showing a table of 

computer ports; 
20 Fig. 17 is a diagram showing a table of 

storage device ports; 

Figs. 18A to 18C are diagrams partially 

showing other display examples on the display of Fig. 

3; 

25 Fig. 19 is a flowchart for explaining 

processing to move a computer port symbol; 

Fig. 20 is a flowchart for explaining 
processing to move a logical unit symbol; 



Fig. 21 is a flowchart for explaining 
processing to move a storage device port symbol; 

Fig. 22 is a flowchart for explaining 
processing to generate areas; 

Fig. 23 is a flowchart for explaining 
processing to invalidate areas; 

Fig. 24 is a flowchart for explaining 
processing to validate areas; 

Fig. 25 is a flowchart for explaining 
processing to change size or a position of an area; and 

Fig. 26 is a diagram showing another display 
example on the display of Fig. 3. 

DESCRIPTION OF THE EMBODIMENTS 

Fig. 1 shows a configuration of a computer 
system 8 0 as an object of management in a favorable 
embodiment according to the present invention. 

The computer system 80 includes a management 
computer 1 to manage the computer system 8 0 , a 
management console computer 2 for a user to operate the 
management computer 1, a storage device 3 having an LUN 
security function, a fabric switch 4, a computer 5 
using the storage device 3, fibre channels 6, and a 
communication unit 7 for the management computer 1 to 
communicate with the management console computer 2, the 
storage device 3, and the fabric switch 4. The storage 
device 3 includes logical units 33a to 33d. The 
storage device 3 also includes fibre channel ports 35a 
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and 35b. The logical units 33a and 33b can be accessed 
as LUNO and LUN1 respectively via paths 37a and 37b in 
the storage device 3 from the fibre channel port 35a. 
The logical units 33c and 33d can be accessed as LUNO 
5 and LUN1 respectively via paths 37c and 37d in the 

storage device 3 from the fibre channel port 35b. The 
fabric switch 4 includes fibre channel ports 45a to 
45e. The fibre channel port 45d is connected via a 
fibre channel cable 6 to the fibre channel port 35a of 
10 the storage device 3. The fibre channel port 45e is 
connected via a fibre channel cable 6 to the fibre 
channel port 35b of the storage device 3. The 
computers 5a to 5c respectively include fibre channel 
fjj ports 55a to 55c. The fibre channel ports 55a to 55c 

15 are respectively connected via fibre channel cables 6 
to the fibre channel ports 45a to 45c of the fabric 
switch 4 . 

In the description below, the computers 5a to 
5c will be simply and representatively referred to as 
2 0 computers 5, 

In the embodiment, it is assumed that the 
communication unit 7 is configured for a connection 
layout of network type such as a local area network or 
the internet. However, it is only necessary that the 
25 management computer 1 includes the management console 
computer 2, the storage device 3, the fabric switch 4, 
and the communication unit for the client computers 5. 
That is, the communication unit 7 is not limited to the 
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connection layout of network type. For example, when 
the management computer 1 includes a fibre channel port 
like the fabric switch 4 and is connected via the fibre 
channel port to the fabric switch 4, it is also 
5 possible to use the fibre channels 6 to conduct the 
function of the communication unit 7 for the storage 
device 3, the fabric switch 4, and the computer 5. The 
management computer 1 may also be connected via a 
serial cable to the fabric switch 4 or the storage 

10 device 3 such that the management computer 1 uses the 
serial cable as a communication unit to operate the 
fabric switch 4 or the storage device 3. The 
management computer 1 and the management console 
computer 2 may be implemented by one computer. Or, the 

15 management computer 1 and the management console 

computer 2 may be included in each of the computers 5. 
Although the storage device 3 is only one storage 
device in the embodiment,, the present invention is 
applicable also to a computer system including a 

20 plurality of storage devices. 

Fig. 2 shows a configuration of the 
management computer 1. 

The management computer 1 includes a central 
processor 11 to control the management computer 1, a 

25 memory 12 to store programs to be executed by the 

central processor 11 and data associated therewith, a 
network interface unit 13 to conduct communication via 
the communication unit 7 , an input /output (I/O) 
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processor 14 for the user to operate the management 
computer 1, a storage device 15 such as a hard disk 
device to store programs to be executed by the central 
processor 11 and data associated therewith, and a bus 
16 to connect the constituent elements 11 to 15 of the 
computer 1 to each other. Although not shown in Fig. 
2, the I/O processor 14 is connected to a display to 
present information to the user and a keyboard and a 
pointing device such as a mouse for the user to input 
data to the computer 1. 

Fig. 3 shows a configuration of the 
management console computer 2. 

The management console computer 2 includes a 
central processor 21 to control the computer 2, a 
memory 22 to store programs to be executed by the 
central processor 21 and data associated therewith, an 
I/O processor 23 for the user to operate the computer 
2, a keyboard 24 connected to the I/O processor 23, a 
pointing device such as a mouse connected to the I/O 
processor 23, a display 26 connected to the I/O 
processor 23, a network interface unit 27 to conduct 
communication via the communication unit 7, a storage 
device 28 such as a hard disk device to store programs 
to be executed by the central processor 21 and data 
associated therewith, and a bus 29 to connect the 
constituent elements 21, 22, 23, 27 and 28 of the 
computer 2 to each other. 

Fig. 4 shows a configuration of the computers 



5a to 5c representatively referred to as computers 5. 

The computer 5 includes a central processor 
51 to control the computer 5, a memory 52 to store 
programs to be executed by the central processor 51 and 
data associated therewith, an I/O processor 53 for the 
user to operate the computer 5, a fibre channel 
interface unit 54, a fibre channel port 55, a network 
interface unit 56 to conduct communication via the 
communication unit 7, a storage device 57 such as a 
hard disk device to store programs to be executed by 
the central processor 51 and data associated therewith, 
and a bus 58 to connect the constituent elements 51 to 
54 and the constituent elements of the computer 2 to 
each other. 

Fig. 5 shows a configuration of the storage 

device 3. 

The storage device 3 includes a central 
processor 31 to control the storage device 3, a memory 
32 to store programs to be executed by the central 
processor 31 and data associated therewith, logical 
units 33a to 33d disposed in the storage device 5, a 
fibre channel interface unit 34, fibre channel ports 
35a and 35b, and a network interface unit 36 to conduct 
communication via the communication unit 7 . 

The memory 32 has stored a program 321 to 
control the LUN security, LUN security information 322 
to keep information regarding LUN and access control, 
and a program 323 to process an access from a computer 
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to an LUN. 

Fig. 6 shows a configuration of the fabric 

switch 4. 

The fabric switch 4 includes fibre channel 
ports 45a to 45e, a central processor 41 to control 
setting of zones and data passing through the fibre 
channel ports 45a to 45e, a zoning information 42 to be 
used by the central processor 41, and a network 
interface unit 43 connected to the communication unit 
7. 

Fig. 7 shows zones set in a computer system 
80. In Fig. 7, three zones are set to the fabric 
switch 4. The zones are a zone 81 with an identifier 
"zone81" in which the fibre channel port 55a of the 
computer 5a can mutually communicate with the fibre 
channel port 35a of the storage device 3, a zone 82 
with an identifier "zone82" in which the fibre channel 
port 55b of the computer 5b, the fibre channel port 35a 
of the storage device 3, and the fibre channel port 35b 
of the storage device 3 can mutually communicate with 
each other, and a zone 83 with an identifier "zone83" 
in which the fibre channel port 55c of the computer 5c 
can mutually communicate with the fibre channel port 
35b of the storage device 3. 

Fig. 8 shows a configuration of a screen 1000 
presented on the display 26 of the management console 
computer 2 in the embodiment. 

The screen 1000 shows a configuration of the 
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access restriction of the computer system 80 shown in 
Figs. 1 and 7 in the embodiment. The screen 100 is 
displayed in the overall screen or in a part of the 
screen of the display 26 of the computer 2. In the 
screen 1000, scroll bars 1080 and 1081 are displayed 
respectively on a right end section and a lower end 
section thereof. By operating the scroll bars 1080 and 
1081, the user can scroll the screen image in the 
screen 100 to display continuous parts of the screen 
image being presently displayed. 

Numerals 1021 to 1023 are computer port 
symbols respectively indicating the fibre channel ports 
55a to 55c respectively of the computers 5a to 5c. For 
easy understanding of the configuration, it is assumed 
in this embodiment that one computer 5 includes one 
port and the symbol is indicated by an icon similar to 
the form of a computer. Naturally, this will not 
restrict the fields to which the present invention is 
applied. 

Numerals 1031 and 1032 are storage device 
port symbols respectively indicating the ports 35a and 
35b of the storage device 3. For easy understanding, 
each port of the storage device 3 is indicated by a 
small circle in the embodiment. 

Numerals 1041 to 1044 are logical unit 
symbols respectively indicating the logical units 33a 
to 33d arranged in the storage device 3. 

Lines 1051 to 1054 respectively indicate 



paths set between the ports 35a and 35b of the storage 
device 3 and the logical units 33a to 33d. Lines 1051 
and 1052 respectively indicate that the logical units 
33a and 33b can be accessed from the port 35a. Lines 
1053 and 1054 respectively indicate that the logical 
units 33c and 33d can be accessed from the port 35b. 

Areas 1011 to 1013 are displayed in the 
screen 1000. These areas respectively indicate ranges 
of access restriction, which will be described later. 
The areas 1011 to 1013 respectively correspond to zones 
81 to 83 allocated to the computer system 80. Each 
area is expressed by a rectangle on the screen 1000. 
However, any contour other than the rectangle can be 
used to express the area without departing from the 
gist of the present invention. Therefore, although 
only a rectangular area is used for simplification of 
the description, the applicable range of the present 
invention is not restricted by the embodiment. 

A cursor 1070 is moved in the screen 1000 in 
response to an operation of the pointing device 25 by 
the user. 

The use can move the computer port symbol, 
the storage device port symbol, the logical unit 
symbol, and the symbol indicating a storage device on 
the screen 1000 by conducing a drag-and-drop operation. 
Specifically, the user places the cursor over a target 
symbol by operating the pointing device 25, depresses a 
button 25a of the pointing device 25, moves the cursor 



- 17 - 

1070 with the button 25a kept depressed to a desired 
position, and then releases the button 25a. 
Resultantly, the symbol is moved to the desired 
position. However, the destination of each symbol is 
5 restricted, which will be described later. The user 
can change the size and the position of each area by 
operating the pointing device 25. 

Fig. 9 is a layout of a management program 
120 to run on the management computer 1. The manage- 

10 ment program 120 includes a command process block 121 
which interprets a user's operation sent from a 
management console program 220, which will be described 
later, and which accordingly instructs a setting block 
127 to change the setting of a device to thereby change 

15 security information 122 as internal data, security 
information 122 to keep areas and symbols to be 
displayed on the screen 1000, a communication block 123 
to communicate with the management console computer 2, 
and a setting block 127 to change the setting of the 

20 storage device 3, the fabric switch 4, and the 
computers 5. 

In the embodiment, the computer system 80 as 
a target system includes only one fabric switch 4. 
However, the present invention is applicable to a 

25 computer system including a plurality of fabric 

switches by arranging in the setting block 127 an 
operation unit to operate the fabric switches. 

Fig. 10 shows a configuration of the 
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management console program 220 to run on the management 
console computer 2. The management console program 220 
includes a display block 222 to draw the screen 1000 on 
the display 26 of the computer 2 and a GUI process 
block 223 to process operations conducted by the user 
from a keyboard 24 and the pointing device 25 of the 
computer 2. 

Description will next be given of tables 3100 
to 3900 contained in the security information 122 as 
internal data of the management program 120. 

Fig. 11 shows the table 3100 to keep a 
correspondence between symbols to be displayed on the 
screen 1000 and management target objects. A first 
item of each row of the table 3100 is an identifier of 
a symbol. The symbol identifier is uniquely assigned 
to the symbol and is used to indicate the symbol 
between the management program 12 0 and the management 
console program 220. A second item of the row 
indicates coordinate values and a size of the symbol on 
the screen 1000. A third item is a name of the symbol 
to be displayed below the symbol on the screen 1000. A 
fourth item is a type of a system constituent element 
expressed by the symbol. HOST_PORT indicates a port of 
a computer, STORAGE_PORT indicates a port of a storage 
device, and LU indicates a logical unit. A fifth item 
is an identifier in the management program 120 of a 
system constituent element expressed by the symbol. In 
the table 3100, the first to fifth rows keep 



information respectively of the symbols 1021, 1022, 
1023, 1031, and 1032. Sixth to ninth rows keep 
information respectively of the symbols 1041 to 1044. 

Fig. 12 shows the table 3200 to keep ranges 
and validity of areas to be displayed on the screen 
1000. In each row of the table 3200, a first item is a 
value of an identifier of the area. The area 
identifier is a value uniquely assigned to the area and 
is used to indicate the area between the management 
console program 220 and the management program 120. A 
second item indicates a range of the area by tow pairs 
of coordinate values respectively of an upper-left 
corner and a lower-right corner of the area on the 
screen 1000. A third item is a name assigned to the 
area for the user to identify the area. A fourth item 
is a validity flag to indicate validity of the area. 
The validity of the area will be described later. When 
the validity flag has a value of "1", the area 
identified by the identifier in the first item is 
valid. When the flag has a value of "0", the area is 
invalid. The first to third rows of the table 3200 
keep information of the areas 1011 to 1013, 
respectively. 

Fig. 13 shows the table 3300 to keep a 
relationship between the areas and the symbols in the 
areas on the screen 1000. In each row of the table 
3300, a first item is an identifier of the area and has 
a value equal to that of the first item of the table 



3200. A second item is an identifier of a symbol 
arranged in the area identified by the identifier of 
the first item and has a value equal to that of the 
first item of the table 3100. The first to third rows 
of the table 3300 indicate that the area 1011 includes 
the symbols 1021, 1031, and 1041, respectively. The 
fourth to eighth rows of the table 3300 indicate that 
the area 1012 includes the symbols 1022, 1031, 1042, 
and 1043, respectively. The ninth to 11th rows of the 
table 3300 indicate that the area 1013 includes the 
symbols 1023, 1033, and 1044, respectively. 

Fig. 14 shows the table 3500 to store a 
correspondence between zones set to the fabric switch 4 
and areas on the screen 1000. in each row of the table 
3500, a first item is a value as an identifier to 
indicate a zone between the management console program 
220 and the management program 120. A second item is 
an identifier of the area and has a value equal to that 
of the first item of the table 3200. A third item is a 
value as an identifier of a zone when the fabric switch 
4 is operated. The value is described in a format 
associated with the fabric switch 4. The first row of 
the table 3500 indicates that the area 1011 corresponds 
to the zone 81. The second row of the table 3500 
indicates that the area 1012 corresponds to the zone 
82. The third row of the table 3500 indicates that the 
area 1013 corresponds to the zone 83. 

Fig. 15 shows the table 3600 to keep, when 



logical units of the computer system 80 has paths to 
storage device ports, a relationship between the 
logical unit symbols of the logical units and the 
storage device port symbols of the storage device 
ports. In each row of the table 3600, a first item is 
an identifier of the logical unit symbol and has a 
value equal to that of the first item of the table 
3100. A second item is an identifier of a symbol 
indicating a port having a path to the logical unit and 
has a value equal to that of the table 3100. A third 
item is a logical unit number (LUN) . 

The first row of the table 3600 indicates 
that the logical unit 33a indicated by the logical unit 
symbol 1041 has a path to the storage device port 35a 
indicated by the storage device port symbol 1031 and 
the logical unit 33a has a logical unit number of "0". 
The third row of the table 3600 indicates that the 
logical unit 33b indicated by the logical unit symbol 

1042 has a path to the storage device port 35a 
indicated by the storage device port symbol 1031 and 
the logical unit 33b has a logical unit number of "1". 
The second row of the table 3600 indicates that the 
logical unit 33c indicated by the logical unit symbol 

1043 has a path to the storage device port 35b 
indicated by the storage device port symbol 1032 and 
the logical unit 33c has a logical unit number of "0". 
The fourth row of the table 3600 indicates that the 
logical unit 33d indicated by the logical unit symbol 
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1044 has a path to the storage device port 35b 
indicated by the storage device port symbol 1032 and 
the logical unit 33d has a logical unit number of "1". 

Fig. 16 shows the table 3800 to keep all 
computer ports of the computer system 80. In each row 
of the table 3800, a first item is a value as a port 
identifier to indicate a port between the management 
console program 220 and the management program 120. A 
second item is a worldwide name of the computer port 
identified by the first item. A third item is an 
identifier of the computer having the port identified 
by the identifier of the first item. The identifier 
has a unique value associated with the computer for use 
in the management program 120. A fourth item is an 
identifier number (0, 1, 2, ...) of the port identified 
by the value of the first item, the identifier being 
used in the computer identified by the value of the 
third item. In this embodiment, since the computer 
includes only one port, "0" is set to the third item. 
A fifth item is an identifier address in the 
communication unit 7 in the communication unit 7 for 
the management program 120 to communicate via the 
communication unit 7 with the computer having the port. 
Since the communication unit 7 is configured for a 
network using transmission control protocol 
(TCP) /internet protocol (IP) in the embodiment, an IP 
address of the computer is set as the value of the 
fifth item. 
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The first to third rows of the table 3800 
respectively keep information of computer ports 
indicated by the symbols 1021 to 1023, respectively. 

Fig. 17 shows the table 3900 to keep all 
storage device ports of the computer system 80. In 
each row of the table 3900, a first item is a value as 
a port identifier to indicate a port between the 
management console program 22 0 and the management 
program 120. A second item is a worldwide name of the 
storage device port. A third item is an identifier of 
the storage device having the port identified by the 
identifier of the first item. The identifier has a 
unique value associated with the storage device for use 
in the management program 120. A fourth item is an 
identifier of the port identified by the value of the 
first item, the identifier being used in the computer 
identified by the value of the third item. The value 
of the fourth item is used to specify the port to the 
storage device. Therefore, the value is described in a 
format depending on the storage device. A fifth item 
is an identifier address in the communication unit 7 
for the management program 120 to communicate via the 
communication unit 7 with the storage device having the 
port. Since the communication unit 7 is configured for 
a network using TCP/IP in the embodiment, an IP address 
of the computer is set as the value of the fifth item. 

The first row of the table 3900 keeps 
information of the storage device port corresponding to 



the symbol 1031. The second row of the table 3900 
keeps information of the storage device port 
corresponding to the symbol 1032. 

The display block 222 refers to the table 
3200 and draws the areas 1011 to 1013 according to the 
coordinate values and the validity flag of each row. 
The display block 222 refers to the table 3100 and then 
draws the computer port symbols 1021 to 1023, the 
storage device symbols 1031 an 1032, and the logical 
unit symbols 1041 to 1044 according to the coordinate 
values, the symbol type, and the symbol name of each 
row. Finally, the display block 222 refers to the 
table 3600 and then draws the paths 1051 to 1054 
between the logical unit symbols and the storage device 
port symbols. 

To display the screen 1000, the management 
console program 220 refers to the tables 3100, 3200, 
and 3600 as above. However, the management console 
program 220 may obtain these tables from the management 
program 120 when the management console program 220 
draws the screen 1000. Or, the management console 
program 220 may have the same tables as those of the 
management program 120. This also applies to the 
security information 122 kept by another management 
program 120. 

The screen 1000, the security information 122 
as internal data of the management program, and a 
correspondence therebetween are as follows. 



Description will now be given of meanings and validity 
of the areas 1011 to 1013 displayed on the screen 1000. 
A valid state of an area and an invalid state thereof 
are criteria introduced for the management program 120 
to determine whether or not mismatching exists between 
an operation conducted by the user for the screen 1000 
and a configuration which can be set to the system. 

In the description below, when a symbol is 
arranged in an area on the screen 1000, it is assumed 
that the symbol belongs to the area. This state is 
also referred to as "the area contains the symbol" 
depending on cases. 

In the embodiment, an area is in a valid 
state or in an invalid state. An area in the valid 
state is called a valid area, and an area in the 
invalid state is called an invalid area. The invalid 
area is displayed in a color different from a color of 
the valid area on the screen 1000. 

When there exists a valid area containing a 
plurality of port symbols, it is indicated that the 
symbols in the area can mutually communicate with 
associated ports, and these ports can communicate with 
each other in the computer system 80. The ports 
include computer ports and storage device ports. When 
a plurality of ports can communicate with each other, 
the fabric switch 4 sets a zone containing the ports. 

In the embodiment, for a valid area 
containing two or more ports, there exists a zone 
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corresponding to the valid area in any situation. As 
described above, the correspondence between the valid 
area and the zone is recorded in the table 3500. When 
one valid area contains a plurality of port symbols, it 
5 is assumed that connectivity exists between the port 
symbols. Also, it is assumed that connectivity exists 
between ports indicated by the port symbols, 
respectively . 

When there exists a valid area containing 

fi 

10 computer symbols and logical unit symbols, it is 



CP 



m 



indicated that for the logical units indicated by the 



logical unit symbols can be accessed from the computer 



ports using the LUN security function, and actually, 

the logical units can be accessed from the computer 
15 ports in the computer system 80. 

In the description below, when there exists a 

valid area containing computer symbols and logical unit 

symbols, it is assumed that the computer port symbols 

can access the logical unit symbols on the screen. 
20 Also, the computer ports indicated by the computer port 

symbols can access the logical units indicated by the 

logical unit symbols. 

The areas can overlap with each other. When 

a plurality of overlapped valid areas contain a symbol, 
25 an actual port or logical unit indicated by the symbol 

has the above meaning for all valid areas in which the 

symbol is arranged. 

As above, an area indicates a group including 
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accessible constituent elements indicated by the 
symbols . 

An invalid area represents a system 
configuration which the user intentionally sets as 
5 "invalid" or an inconsistent system configuration. For 
example, assume that the user intentionally invalidates 
an area containing a logical unit symbol and a computer 
port symbol- In response to the user's operation, the 
management program 120 changes the configuration of the 

10 computer system (assume that the areas do not overlap 
each other in this case) such that the computer port 
indicated by the computer port cannot access the 
logical unit indicated by the logical unit symbol. 
Processing in this case will be described later. When 

15 an area contains a logical unit symbol and a computer 
port symbol, the area is an invalid area if 
connectivity exists between the storage device port 
symbol having a path to the logical unit symbol and the 
computer port symbol. This will be described by 

20 referring to Figs. 18A to 18C. 

In the case of Fig. 18A, an area 4001 
guarantees connectivity between a storage device port 
symbol 4002 having a path to a logical unit symbol 4004 
and a computer port symbol 4003. Therefore, the area 

25 4001 containing the logical unit symbol 4004 and the 
computer port symbol 4003 is valid by itself. In the 
case of Fig. 18B, when an area 4011 is valid, the area 
4011 guarantees connectivity between a storage device 



port symbol 4013 and a computer port symbol 4014 , and 
hence an area 4012 is valid. However, in the case of 
Fig. 18C, connectivity is absent between a storage 
device port symbol 4023 and a computer port symbol 
4024, and hence an area 4022 is invalid, but an area 
4021 is valid. 

It is one of the objects of the present 
invention to avoid inconsistent setting of devices. 
Therefore, when either one of the areas becomes invalid 
on the screen 1000 as a result of influence from a 
user's operation, the operation is regarded as invalid. 
However, there exists an exceptional case of operation 
of the user to generate an area. In this case, the 
user can initialize an invalid area. The invalid area 
thus generated does not influence the other area. 

Even when an invalid area becomes a 
consistent area, i.e., a valid area as a result of 
influence from a user's operation, the management 
program 120 does not automatically validate the area. 
An invalid area remains invalid up to a point of time 
when the user explicitly validates the invalid area. 
The invalid area can be validated from a menu or the 
like through a screen operation. For example, the user 
selects an invalid area and then conducts an operation 
to select "validate" from a menu, then the invalid area 
is validated to a valid area. 

As above, whether an area is in a valid state 
or in an invalid state is recorded in the fourth item 



of the area control table 3200 in the security 
information 122. If the area is invalid, a value of 
"0" indicating "invalid" is recorded in the fourth 
item. If the area is valid, a value of "1" indicating 
"valid" is recorded in the fourth item. 

Description has been given of the constituent 
elements of the embodiment, namely, the computer system 
80, the screen 100 to be displayed on the display 26 of 
the management console computer 2, the security 
information 122 as internal data of the management 
software 129, and the valid and invalid areas. Next, 
description will be given of a method in which the 
embodiment supports, by use of the constituent 
elements, an access restriction setting function to 
restrict a user from accessing the computer system 80. 

In the embodiment, the management program 12 0 
provides via the screen 1000 three function regarding 
the computer system access restriction to the user 
(typically, the computer system manager) . The 
functions are (1) generation and deletion of a zone, 
(2) change of a port contained in a zone, and (3) 
allocation of a logical unit to a computer by the LUN 
security. Details thereof are as follows. 

(1) To generate a zone, the user generates 
an area on the screen 1000 and then moves in the area 
by a pointing device 25 a symbol of a storage device 
port and a symbol of a computer port to be added to a 
new zone to be created. To delete a zone, the user 
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delete an area corresponding to the zone by a menu 
operation. 

(2) To add a new computer port or a new 
storage device port to an existing zone, the use moves 

5 by the pointing device 25 a symbol indicating the 

desired computer or storage device port to a position 
in a desired area. To remove a computer port or a 
storage device port from a zone, the use moves by the 
pointing device 25 a symbol indicating the desired 
10 computer or storage device port to a position outside 
the areas corresponding to the zone. 

(3) To allocate a new logical unit to a 
computer, the user moves by the pointing device 25 a 
desired logical unit symbol to a position in an area 

15 containing a computer port symbol. Or, the user moves 
ftj by the pointing device 25 a symbol indicating a desired 

computer port to a position in an area containing a 
logical unit symbol. Conversely, to release the 
allocation of a logical unit to a computer, the user 
20 moves a symbol indicating a logical unit to a position 
outside an area containing a symbol indicating a 
computer port. Or, the user moves a symbol indicating 
a computer port to a position outside an area 
containing a symbol indicating a logical unit. 
25 In response to the operation of the user, the 

management program 120 interprets the contents of the 
operation and then changes the setting of the zones and 
the setting of the LUN security in the computer system 
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80. In the management program 120, the command process 
block 121 interprets the contents of the operation. To 
reflect the interpreted contents of the user's 
operation in the computer system 80, the command 
process block 121 uses eight procedures of the setting 
block 127 as below. In the embodiment, a procedure 
indicates a program routine which conducts a sequence 
of processing according to specified parameters and 
produces results of the processing. 

A procedure AddAllowedHosts receives as 
parameters an identifier of one logical unit and an 
identifier of at least one computer port and 
appropriately sets the constituent elements of the 
computer system 8 0 such that the computer port 
identified by the specified computer port identifier 
can access the logical unit identified by the specified 
logical unit identifier. 

A procedure RemoveAllowedHosts receives as 
parameters an identifier of one logical unit and an 
identifier of at least one computer port and 
appropriately sets the constituent elements of the 
computer system 80 such that the computer port 
identified by the specified computer port identifier 
cannot access the logical unit identified by the 
specified logical unit identifier. 

A procedure AllowToAccess receives as 
parameters an identifier of one computer port and an 
identifier of at least one logical unit and 
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appropriately sets the constituent elements of the 
computer system 80 such that the port identified by the 
specified computer port identifier can access the 
logical unit identified by the specified logical unit 
identifier . 

A procedure DenyToAccess receives as 
parameters an identifier of one computer port and an 
identifier of at least one logical unit and 
appropriately sets the constituent elements of the 
computer system 80 such that the computer port 
identified by the specified computer port identifier 
cannot access the logical unit identified by the 
specified logical unit identifier. 

Four procedures described above are used to 
set the LUN security. These procedures can be 
implemented as follows. In this regard, a setting unit 
provided by a vendor of each storage device as a unit 
opened to the public is beforehand related to the 
storage device used in the management program 120. 
This can be easily conducted. 

In the setting of a storage device having the 
LUN security function, a worldwide name (WWN) is 
generally used as a specifier of an external port which 
can access a logical unit, and an identifier of a port 
of the storage device and the logical unit number (LUN) 
are used as a specifier of the logical unit. The 
identifier of the storage device port is described in a 
format according to the storage device as shown in the 
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fourth item of the table 3900. 

Each procedure accesses the tables 3100, 
1600, and 3900 to obtain, using the logical unit 
identifier received as a parameter, an identifier of a 
5 storage device in which the logical unit is arranged. 
To conduct an operation for a storage device, a port of 
the storage must be specified. A value for the port 
can be obtained from the fourth item of the table 3900. 
According to the values obtained as parameters, each 

10 procedure uses the unit provided by the vendor of the 
storage device as a unit opened to the public to 
thereby conduct operation for the LUN security. 

In the setting of a computer having the LUN 
security function, it is assumed that a program to set 

15 the LUN security is running on the computer and the 
management program 120 can send data indicating a 
change of the setting of the LUN security via the 
communication unit 7 to the LUN security setting 
program. According to the indication from the 

20 management program 120, the LUN security setting 

program changes the setting of the LUN security for a 
device driver of a fibre channel host bus adapter of 
the computer on which the LUN security setting program 
is running. This operation requires parameters for the 

25 fibre channel host bus adapter, namely, a logical unit 
number (LUN) of the logical unit as a target unit of 
the setting operation and a worldwide name (WWN) of the 
storage device port having a path to the logical unit. 
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The management program 120 obtains these values from 
the tables 3600 and 3900 and sends the obtained values 
to the LUN security setting program. For the 
management program 120 to sends an indication via the 
communication unit 7 to the LUN security setting 
program, a correspondence of addresses such as IP 
addresses between the computer port and the 
communication unit 7 of the computer is required. The 
correspondence, specifically, required values can be 
obtained from the table 3800. 

Description will be now given of four 
procedures to set zones. 

A Procedure AddToZone receives as parameters 
one zone identifier and at least one port identifier 
and adds the port identified by the port identifier to 
the zone identified by the zone identifier by operating 
the fabric switch 4 . 

A Procedure removeFromZone receives as 
parameters one zone identifier and at least one port 
identifier and removes the port identified by the port 
identifier from the zone identified by the zone 
identifier by operating the fabric switch 4. 

A Procedure CreateZone is a procedure to 
create a new zone. The procedure receives as 
parameters one identifier of a new zone in a format 
depending on the fabric switch 4 and at least one port 
identifier and creates, by operating the fabric switch 
4, a new zone which contains the port identified by the 



port identified and which has the zone identifier 
received as a parameter. 

A procedure RemoveZone receives one zone 
identifier as a parameter and removes the zone 
identified by the zone identifier by operating the 
fabric switch 4. 

These procedures can be implemented as 
follows. In this regard, a unit to conduct the setting 
to the fabric switch 4 is beforehand opened to the 
public . 

In the unit opened to the public for the 
fabric switch 4, worldwide name (WWN) is generally used 
as an identifier of a port. In the embodiment, the WWN 
of the port can be obtained from the table 3800 or 
3900. The value used as a zone specifier to operate 
the fabric switch 4 can be obtained from the table 
3500. Therefore, using the above values as parameters, 
it is possible in each procedure to conduct the zoning 
operation by the unit opened to the public to operate 
the fabric switch 4 . 

In the following description regarding user's 
operations, six procedures defined in the command 
process block 121 will be used as follows. 

A procedure GetEntering is a procedure which 
receives an identifier and coordinate values of a 
symbol as parameters to output a list of areas on the 
screen 1000, each of the areas containing the specified 
coordinate values and not containing the specified 



symbol. In the procedure, a list of areas each of 
which contains the coordinate values is temporarily 
created in the memory 12 by referring to the table 
3200. Any area in the list for which it is found by 
referring to the table 3300 that the area contains the 
specified symbol is removed from the list. The 
resultant list is outputted from the procedure. 

A procedure GetLeaving is a procedure which 
receives an identifier and coordinate values of a 
symbol as parameters to output a list of areas on the 
screen 1000, each of the areas containing the specified 
symbol and not containing the specified coordinate 
values. In the procedure, a list of areas each of 
which contains the symbol is created by referring to 
the table 3300. Any area in the list for which it is 
found by referring to the table 3200 that the area 
contains the coordinate values is removed from the 
list. The resultant list is outputted from the 
procedure . 

A procedure GetHostPortsInListOf Area is a 
procedure which receives a list of identifiers of areas 
to output a list of Identifiers of computer port 
symbols contained in all areas of the list. In the 
procedure, for the respective areas of the specified 
list, symbols contained in the areas are obtained by 
referring to the table 3300 to output a list containing 
the obtained symbols. 

Also, GetStoragePortsInListOfArea is a 



procedure which receives a list of identifiers of areas 
as parameters to output a list of identifiers of 
storage device port symbols contained in all specified 
areas. GetLusInListOf Area is a procedure which 
receives a list areas as parameters to output a list of 
identifiers of logical unit symbols contained in all 
specified areas. However, the elements of the lists 
outputted from three procedures described above are not 
duplicated between the lists. 

A procedure CheckConnectivity receives 
identifiers of two port symbols and outputs "truth" if 
connectivity is present between the port symbols 
indicated by the identifiers and "false" if 
connectivity is absent between the port symbols 
indicated by the identifiers. The procedure is 
implemented as follows. For each of the specified port 
symbols, a list of areas containing the port symbols is 
created by referring to the table 3300 to be 
temporarily stored in the memory 12. Two lists thus 
created are then examined. If there exists an area 
contained in both lists, it is assumed that 
connectivity is present between the ports. 

A procedure IsAllowedFor receives an 
identifier of one computer port symbol and an 
identifier of at least one logical unit symbol as 
parameters and determines whether or not the specified 
computer port symbols can access the specified logical 
unit symbols on the screen 1000. The procedure is 
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implemented as follows. For each specified logical 
unit symbol, identifiers of storage device ports having 
paths to the logical unit symbol are obtained from the 
table 3600. For each of the obtained identifiers of 
the storage device port symbols, CheckConnectivity is 
executed using the specified identifier of the computer 
port symbol. If it is determined as a result that 
connectivity exists for the identifiers of the storage 
device port symbols, "truth" is outputted. Otherwise, 
"false" is outputted. 

A procedure IsAcessibleFrom receives an 
identifier of one logical unit symbol and an identifier 
of at least one computer port symbol as parameters and 
determines whether or not the specified computer port 
symbols can access the specified logical unit symbols 
on the screen 1000. 

The procedure is implemented as follows. A 
search is made through the table 3600 to obtain 
identifiers of storage device port symbols having paths 
to the specified logical unit symbol. For each of the 
obtained storage device port symbols, identifiers of 
all valid areas to which the storage device port 
symbols belong are obtained from the tables 3200 and 
3300. A list of the identifiers of the areas is 
created to be temporarily stored in the memory 12. A 
check is made for each pair of an identifier in the 
list and the specified identifier of the computer port 
symbol to determine whether or not the pair is 



contained in the table 3300. If any pair is not 
contained in the table 3300, the procedure outputs 
"false". Otherwise, the procedure outputs "true". 

Description has been given of the procedure 
defined in the embodiment. Next, description will be 
given of processing of the management program 120 and 
the management console program 220 when the user moves 
a computer port symbol displayed on the screen 1000. 

Fig. 19 shows a flowchart 5000 of processing 
executed by the command process block 121 in the 
management program 12 0 when a symbol indicating a 
computer port is moved. When the user moves a computer 
port symbol, the GUI process block 223 of the 
management console program 22 0 running on the computer 
2 generates a set of data including an identifier of 
the moved symbol, coordinate values of the destination 
of the movement, and a value indicating the movement of 
the computer port symbol and transmits the data via the 
communication unit 7 to the control program 120 running 
on the management computer 1 . 

In the control program 120, the communication 
block 123 receives the data sent from the management 
console program 220 and then passes the data to the 
command process block 121. The block 121 analyzes the 
received data. When it is detected that the computer 
port symbol is moved, the command process block 121 
starts processing of the flowchart shown in Fig. 19. 
The processing will next be described by referring to 
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Fig. 19. 

In step 5001, the command process block 121 
executes the procedure GetEntering using as parameters 
the identifier of the moved symbol and the coordinate 
5 values of the movement destination, creates a list of 
identifiers of all areas containing the moved symbol as 
a new item, and temporarily stores the list in the 
memory 12. The list will be called as "Entering" 
hereinbelow. 

10 In step 5002, the command process block 121 

executes the procedure GetLeaving using as parameters 
the identifier of the moved symbol and the coordinate 
values of the movement destination, creates a list of 
identifiers of all areas not containing the moved 

15 symbol as a result of the movement, and temporarily 
stores the list in the memory 12. The list will be 
called as "leaving" hereinbelow. 

In step 5003, the command process block 121 
determines whether or not any one of the valid areas 

20 identified by the identifiers contained in the entering 
list becomes invalid as a result of the .addition of the 
computer symbol. If such an area is present, the 
process goes to step 5010 to invalidate the user's 
operation . 

25 The determination is achieved specifically by 

executing the steps below. First, the command process 
block 121 refers to the table 3200 to generate a list 
containing valid areas identified by the identifiers 



contained in the entering list and temporarily stores 
the list in the memory 12. The command process block 
121 then executes the procedure GetLusInListOf Area to 
obtain all identifiers of the logical unit symbols 
5 contained in the areas identified by the identifiers 
contained in the list. For all identifiers of the 
logical unit symbols, the command process block 121 
refers to the table 3600 to obtain identifiers of the 
storage device port symbols having paths to the logical 

10 unit symbols, creates a list of the obtained 

identifiers of the storage device port symbols, and 
temporarily stores the list in the memory 12. 

For the obtained identifiers of the storage 
device port symbols, the command process block 121 

15 executes the procedure CheckConnectivity to determine 
whether or not connectivity exists between the storage 
device port symbols and the moved computer port symbol. 
If there exists any the storage device port symbol not 
having connectivity to the moved computer port symbol, 

20 either one of the areas identified by the identifiers 
contained in the entering list is changed from a valid 
state to an invalid state as a result of the user's 
operation to move the symbol. As described above, such 
an operation is regarded as invalid in the embodiment. 

25 Therefore, the process of the command process block 121 
goes to step 5010 to send a message indicating 
rejection of the movement of the symbol to the 
management console program 220 to thereby terminate the 



processing. If all storage device port symbol have 
connectivity to the moved computer port symbol, the 
command process block 121 records a correspondence 
between the identifiers of the areas contained in the 
entering and leaving lists and the moved symbol in the 
table 3300. Control goes to a step 5004 to execute 
processing in which the setting operation is conducted 
to the computer system 80. 

In steps 5004 and 5005, the zones are change 
according to the movement of the symbol. 

In step 5004, the computer port is added to 
zone. Any identifier of a zone corresponding to the 
area identified by the identifiers contained in the 
entering list is obtained from the table 3500. Using 
as parameters the zone identifier and an identifier of 
the computer port indicated by the moved computer port 
symbol, the command process block 121 executes the 
procedure AddToZone to indicate the setting block 127 
to add the computer port to the zone. The computer 
port identifier is obtained from the table 3100. 
Subsequently, the command process block 121 adds a 
record including the identifier of the zone to which 
the new port is added and the computer port to the 
table 3500. 

In step 5005, the computer port is removed 
from the zone. The command process block 121 obtains 
from the table 3500 an identifier of a zone 
corresponding to an area identified by the identifiers 



contained in the leaving list and executes the 
procedure RemoveFromZone using the obtained zone 
identifier and the moved computer port as parameters to 
indicate the setting block 127 to remove the computer 
port from the zone. The command process block 121 
removes a record including the identifier of the zone 
from which the port is removed and the removed computer 
port from the table 3500. 

In steps 5006 and 5007, the command process 
block 121 creates a new zone necessary as a result of 
the symbol movement and removes a zone which becomes 
unnecessary as a result of the symbol movement. In the 
embodiment, it is assumed that for a valid area 
containing at least two port symbols (including a 
computer port or storage device port symbol) , a zone 
corresponding to the area is set to the computer system 
80. Also, no zone exists for a valid area containing 
at most one port symbol. Incidentally, a zone 
corresponding to an invalid zone is not created. 

In step 5006, the command process block 121 
executes processing to create a new zone corresponding 
to a valid area as a result of the addition of the 
computer port symbol. The area is a valid area which 
is identified by an identifier contained in the 
entering list and which contains two port symbols. The 
identifier of the area is obtained from the entering 
list and the table 3300. 

For each area identifier thus obtained, the 
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command process block 121 executes the procedure 
CreateZone using as parameters identifiers of two ports 
corresponding to two port symbols contained in the area 
and an identifier of a new zone in the fabric switch 4 
5 to indicate the setting block 127 to create the new 
zone. The identifier of the new zone in the fabric 
switch 4 may be appropriately created by the command 
process block 121 or may be inputted via the management 
console program 220 from the user. The command process 
10 block 121 allocates a new identifier in the management 
program 120 to the new zone and writes a record 
including the identifier and the identifier of an area 
corresponding to the zone in the table 3500. 
rfi In step 5007, the command process block 121 

-j? 15 executes processing when an area and a zone corre- 

sponding thereto become unnecessary as a result of the 
removal of the computer port symbol in a position 
outside the area. The area is a valid area which is 
identified by an identifier contained in the leaving 
20 list and which contains only one port symbol. The 
identifier of the area is obtained from the leaving 
list and the table 3300. 

For each area identifier thus obtained, the 
command process block 121 obtains an area thereof and 
25 an identifier of a zone corresponding thereto from the 
table 3500. Using an identifier of the zone in the 
fabric switch 4 as a parameter, the command process 
block 121 executes the procedure RemoveZone to indicate 
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the setting block 127 to remove a zone which becomes 
unnecessary. The command process block 121 also 
removes a record keeping a correspondence between the 
removed zone and the associated area from the table 
3500. 

Steps 5008 and 5009 changes the setting of 
the LUN security. In pre-processing of steps 5008 and 
5009, the command process block 121 accesses the table 
3200, selects valid areas from the areas identified by 
the identifiers contained in the entering list, and 
creates a list of identifiers of the selected valid 
areas to temporarily store the list in the memory 12. 
Using the created list of the obtained area identifiers 
as a parameter, the command process block 121 executes 
the procedure GetLusInListOf Area to obtain a list 
containing all identifiers of logical unit symbols 
contained by the areas identified by the identifiers 
contained in the created list. The obtained list will 
be referred to as "enteringlun" hereinbelow. 
Similarly, the command process block 121 obtains a list 
containing all identifiers of logical unit symbols 
contained by the valid areas identified by the 
identifiers contained in the leaving list. The 
obtained list will be referred to as "leavinglun" 
hereinbelow. 

In step 5008, a logical unit accessible from 
a computer is set. To identify a logical unit which 
becomes accessible from the computer, the command 



process block 121 executes processing for the logical 
unit symbols which is contained in the enteringlun list 
obtained before and which is not contained in the 
leavinglun list obtained before to obtain identifiers 
of logical units corresponding to the logical unit 
symbols from the table 3100 and creates a list of the 
obtained logical unit identifiers to temporarily store 
the list in the memory 12. Using as parameters the 
list of the logical unit identifiers and a worldwide 
names (WWN) of the computer port corresponding to the 
moved symbol, the command process block 121 executes 
the procedure AllowToAccess to indicate the setting 
block 127 to conduct the setting of access allowance 
for the LUN security. 

In step 5009, a logical unit inaccessible 
from a computer is set. In a manner converse that of 
step 5008, for the identifiers of the logical unit 
symbols which are contained in the leavinglun list 
obtained before and which are not contained in the 
enteringlun list obtained before, the command process 
block 121 obtains identifiers of logical units 
corresponding to the logical unit symbol identifiers 
from the table 3100 and creates a list of the obtained 
logical unit identifiers to temporarily store the list 
in the memory 12. 

Subsequently, using as parameters the created 
list and a worldwide names (WWN) of the computer port 
corresponding to the moved symbol, the command process 



block 121 executes the procedure DenyToAccess to 
indicate the setting block 127 to conduct the setting 
of access denial for the LUN security. Thereafter, the 
command process block 121 notifies the normal 
termination of the processing to the management program 
120 and terminates the processing. 

Description will next be given of processing 
when the user moves a logical unit symbol on the screen 
1000. 

First, description will be given of a case in 
which a valid area is invalidated as a result of the 
movement of a logical unit symbol. Specifically, when 
a logical unit symbols is moved to a position in a 
valid area, the valid area becomes in valid. Even when 
a logical unit symbol is moved to a position outside an 
area, the area is not invalidated. If connectivity 
does not exist between a computer port symbol contained 
in an area and a storage device port symbol having a 
path to a logical unit symbol moved to the area, the 
area becomes invalid. As described above, any 
operation which makes an area invalid is not allowed in 
the embodiment. Therefore, the movement of a logical 
unit symbol to a valid area to resultantly make the 
area invalid is not allowed. 

When the user moves a logical unit symbol on 
the screen 1000, the management console program 220 
transmits, as in the movement of the computer port 
symbol, the identifier of the moved symbol, coordinate 



values of the destination of the movement, and a value 
indicating the movement of the logical unit symbol to 
the management program 120. 

In management program 120, data received by 
the communication block 123 is passed to the command 
process block 121. The block 121 analyzes the received 
data. When the movement of the logical unit symbol is 
detected, the command process block 121 starts 
processing of a flowchart 6000 shown in Fig. 20. The 
processing will be described by referring to Fig. 20. 

In step 6001, using the identifier of the 
moved symbol and the coordinate values of the 
destination of the movement as parameters, the command 
process block 121 executes the procedure GetEntering to 
obtain a list of identifiers of areas to which the 
moved symbol is added as a new item. The list will be 
referred to as "entering" hereinbelow. 

In step 6002, the command process block 121 
refers to the table 3200 to generate a list of 
identifiers of the areas which are contained in the 
entering list and which are in a valid state and 
temporarily stores the list in the memory 12. Using 
the list as a parameter, the command process block 121 
executes the procedure GetHostPortsInListOf Area to 
create a list of computer port symbol identifiers. 

In step 6003, using the identifier of the 
moved symbol and the list of computer port symbol 
identifiers as parameters, the command process block 
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121 executes the procedure IsAccessibleTo to determine 
whether or not the moved symbol is accessible from all 
computer port symbols identified by the list of 
computer port symbol identifiers on the screen 1000. 
5 If the moved logical unit symbol is not accessible from 
any one of the computer port symbols identified by the 
list, control goes to step 6009, the user's operation 
is rejected, and the processing is terminated. 
Otherwise, control goes to step 6004. 

10 In steps 6004 to 6007, the command process 

block 121 changes the setting of the LUN security. 

In step 6004, using the identifier of the 
moved symbol and the coordinate values of the 
destination of the movement as parameters, the command 

15 process block 121 executes the procedure GetLeaving to 
obtain a list of identifiers of areas which do not 
contain the symbol as a result of the user's operation. 
The list will be referred to as "leaving" hereinbelow. 

In step 6005, the command process block 121 

20 refers to the table 3200 to create a list of valid 

areas identified by the identifiers of areas contained 
in the leaving list and temporarily stores the list in 
the memory 12. Using the list as a parameter, the 
command process block 121 executes the procedure 

25 GetHostPortlnListOfArea to obtain a list of identifiers 
of computer port symbols. The command process block 
121 refers to the table 3100 to obtain identifiers of 
computer ports corresponding to the computer port 
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symbol identifiers contained in the list, creates a 
list of the computer port identifiers, and temporarily 
stores the list in the memory 12. 

In step 6006, the command process block 121 
5 refers to the table 3200 to obtain identifiers of 
logical units corresponding to the moved symbol. 
Using, as parameters, the obtained identifiers of 
logical units and the list of computer port identifiers 
created in step 6005, the command process block 121 
10 executes the procedure RemoveAllowedHost to indicate 

the setting block 127 to set the LUN security function 
such that the computer port cannot access the logical 
units . 

In step 6007, the command process block 121 
15 refers to the table 3100 to obtain identifiers of 
computer ports corresponding to the identifiers 
contained in the list of computer port symbols created 
in step 6002, creates a list of the obtained computer 
port identifiers, and temporarily stores the list in 
20 the memory 12. Using the created list and the logical 
unit identifiers corresponding to the moved symbol as 
parameters, the command process block 121 executes the 
procedure AddAllowedHost to indicate the setting block 
127 to set the LUN security function such that the 
25 computer port can access the logical units. 

Finally, in step 6008, the command process 
block 121 synchronizes the screen 1000 and the tables 
after the update operation. Specifically, the command 
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process block 121 sets new coordinate values to the 
second item of the record including the moved symbol in 
the table 3100, adds a record indicating a correspond- 
ence between the identifiers of the areas contained in 
the entering list and the identifiers of the moved 
symbol to the table 3300, and deletes a record 
indicating a correspondence between the identifiers of 
the areas contained in the leaving list and the 
identifiers of the moved symbol from the table 3300. 
The command process block 121 notifies the normal 
termination of the processing to the management console 
program 220 and then terminates the processing. 

Next, description will be given of processing 
when the user moves a symbol indicating a storage 
device port on the screen 1000. 

First, description will be given of the 
movement of the storage device port symbol and the 
handling of an invalid area. When the user moves a 
storage device port symbol to a position outside a 
valid area, connectivity thereof to computer port 
symbols is possibly lost depending on cases. 
Resultantly, areas containing computer port symbols of 
which connectivity to the storage device port symbol is 
lost and logical unit symbols having paths to the moved 
storage device port symbol become invalid areas. 

In the embodiment, when an area becomes an 
invalid area as a result of the movement of a storage 
device port symbol, the movement of the storage device 
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port symbol is invalidated as in the movement of a 
computer port symbol. Incidentally, even when a 
storage device port symbol is moved to a position in an 
area, any area does not become invalid. 

Referring to a flowchart 7000 of Fig. 21, 
description will be given of processing when the user 
moves a storage device port symbol on the screen 1000. 

When the user moves a storage device port 
symbol on the screen 1000, the management console 
program 220 sends to the management program 120 data 
including an identifier of the moved symbol, coordinate 
values of the destination of the movement, and a value 
indicating the movement of the storage device port 
symbol as in the movement of a computer port symbol. 

In the management program 12 0, the 
communication block 123 receives the data sent from the 
management console program 220. The communication 
block 123 passes the data to the command process block 
121. The block 121 analyzes the received data. When 
the movement of the storage device port symbol is 
detected, the command process block 121 starts 
processing of the flowchart 7000. 

In step 7001, using the identifier of the 
moved symbol and the coordinate values of the 
destination of the movement as parameters, the command 
process block 121 executes the procedure GetLeaving to 
obtain a list of identifiers of areas not containing 
the moved symbol as a result. The list of the area 
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identifiers will be referred to as "leaving" 
hereinbelow. 

In step 7002, the command process block 121 
refers to the table 3200 to create a list of areas in a 
valid state, the areas being identified by the 
identifiers of the areas contained in the leaving list. 
The block 121 temporarily stores the list in the memory 
12. Using the created list as a parameter, the command 
process block 121 executes the procedure 
GetHostProtsInListOfArea to obtain a list of identi- 
fiers of computer port symbols losing connectivity to 
the moved storage device port symbol as a result.' For 
each of the identifiers of the computer port symbols 
contained in the list, the command process block 121 
determines whether or not connectivity between a 
computer port symbol identified by the identifier and 
the moved storage device port symbol is guaranteed by 
at least two areas. From the list created by referring 
to the table 3300, the command process block 121 
removes any identifiers of the storage device port 
symbols of which the above connectivity is guaranteed 
as a result of the determination. 

In step 7003, the command process block 121 
makes a search through the tables 3200 and 3300 to 
create a list of variable areas to which the computer 
port symbols contained in the list created in step 7002 
belong and temporarily stores the list in the memory 
12. Using the created list as a parameter, the command 



process block 121 executes the procedure 
GetLusInListOfArea to obtain a list of identifiers of 
logical unit symbols belonging to the areas. The 
obtained logical unit symbols can be accessed on the 
screen 1000 from the computer port symbols of which 
connectivity to the storage device port symbol 
indicated by the moved symbol is lost. 

In step 7004, the command process block 121 
makes a check to determine whether or not any one of 
the identifiers of the logical unit symbols contained 
in the list obtained in step 7003 has a path to the 
moved symbol. Specifically, command process block 121 
refers to the table 3600 to determine whether or not 
any one of the logical unit symbols has a path to the 
moved storage unit port symbol. If there exists such a 
logical unit symbol having a path to the moved storage 
unit port symbol, the user's operation is invalid for 
the following reason. The logical unit symbol checked 
in this operation can be accessed on the screen 1000 by 
the computer port symbol of which connectivity to the 
moved symbol is lost. 

As above, when the user's operation is 
regarded as in valid, control goes to step 7009. The 
command process block 121 notifies the invalidity of 
the movement of the symbol to the management console 
program 220 and then terminates the processing. The 
management console program 220 restores the screen 1000 
to the state before the movement of the symbol. 
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In step 7004, if the user's operation is not 
invalid, control goes to step 7005 to acquire an 
identifier of an area to which the moved symbol is 
added as a new item. Using the identifier of the moved 
storage device port symbol and the coordinate values of 
the moved symbol after the movement as parameters, the 
command process block 121 executes the procedure 
GetEntering to obtain a list of identifiers of areas to 
which the storage device port symbol is added as a new 
item. The list will be referred to as "entering" 
hereinbelow. 

In step 7006, the command process block 121 
selects areas of which the identifiers are contained in 
the entering list and which are in the valid state, and 
refers to the table 3500 to obtain the identifiers of 
zones corresponding to the selected areas. 

For each of the identifiers of zones, the 
command process block 121 executes the procedure 
AddToZone using as parameters the zone identifier and 
an identifier of a storage device port indicated by the 
moved symbol, the identifier being obtained from the 
table 3100. The block 121 thereby indicates the 
setting block to add a new storage device port to the 
zones. For an area not having a zone corresponding 
thereto, the command process block 121 refers to the 
table 3300 to acquire therefrom an identifier of a port 
symbol contained in the area. If there exists a port 
symbol contained in the area, the command process block 
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121 executes the procedure CreateZone to create a zone 
containing a port indicated by the port symbol and the 
storage device port indicated by the moved symbol. An 
identifier of a new zone which is a parameter to be 
5 passed to the procedure CreateZone and which is used in 
the fabric switch 4 may be appropriately created by the 
command process block 121 in advance or may be 
indicated from the user to the management console 
M 5 program 220. 

ftr'i 

C3 10 The command process block 121 appropriately 

r-r * 

Eft assigns an identifier to the created zone, the 

m 
* 

v| identifier being used in the management program 120. 

cn 

s The block 121 adds to the table 3500 a record including 

ill the identifier of the new zone, an area corresponding 

15 to the zone on the screen 1000, and an identifier of 
the zone for the fabric switch 4. For an area which 
does not have a zone corresponding thereto and which 
does not contain any port symbol, the command process 
block 121 does not change the setting of the zones. 
20 In step 7007, for areas which are identified 

by the identifiers of the areas contained in the 
leaving list and which are in the valid state, the 
command process block 121 refers to the table 3500 to 
obtain therefrom zones corresponding to the areas, 
25 respectively. Using the zone identifiers and the 

identifier of the storage device port indicated by the 
moved symbol as parameters, the command process block 
121 executes the procedure Remove FromZ one to indicate 



the setting block to remove the storage device port 
from the zones. 

When only one port remains in the zone by 
removing the storage device port from the zone, namely, 
when the zone contains only the moved symbol and the 
port symbol, the command process block 121 executes the 
procedure RemoveZone using the identifier of the zone 
for the fabric switch 4 to indicate the setting block 
to remove the zone. The block 121 also removes a 
record keeping information of the removed zone. 

Finally, in step 7008, the command process 
block 121 sets the coordinate values after the movement 
of the symbol to the coordinate values in the second 
item of the record corresponding to the storage device 
port in the table 3100 and reflects the relationship 
between the entering and leaving lists and the storage 
device port symbol indicated by the moved symbol in the 
table 3300. Thereafter, the command process block 121 
notifies the normal termination of the processing to 
the management console program 220 and terminates the 
processing. 

The creation of an area will be next 
described. The user can operate the pointing device 25 
to create an area on the screen 1000. To create an 
area on the screen 1000, the user operates the pointing 
device 25 to move the cursor 1070 to a position of a 
vertex of a new area to be created. Assume that the 
cursor 1070 is at a position outside any existing area. 



Subsequently, the user operates the pointing 
device 25 with the button 25a thereof kept depressed to 
move the cursor 1070 to a desired position in the 
screen 1000. A rectangle is displayed on the screen 
1000. In the rectangle, a line segment from a point of 
coordinate values at which the button 25a is depressed 
to a point of coordinate values of the cursor 1070 is a 
diagonal thereof. When the user moves the cursor 1070 
to a desired position, the user releases the button 
25a. A new area is a rectangle of which the diagonal 
is drawn between the point of coordinate values at 
which the button 25a is depressed and the point of 
coordinate values at which the button 25a is released. 
Through the sequence of operations, the user can 
specify a position and a size of a desired area to 
indicate the management program 120 to create the area. 

In the embodiment, when a new area thus 
created is an inconsistent area, the area is created as 
an invalid area. This occurs in a case in which when a 
created area contains logical unit symbols and computer 
port symbols, any one of the computer ports indicated 
by the computer port symbols cannot access any one of 
the logical units indicated by the logical unit 
symbols. That is, connectivity is absent between any 
one of the storage device port symbols having paths to 
the logical unit symbols and any one of the computer 
port symbols. 

Next, processing steps will be described. 



Fig. 22 shows in a flowchart 8000 the processing when 
the user creates an area. The area created by the user 
will be referred to as "new area" herebelow. 

Assume that the user conducts the area 
creating operation described above. The management 
console program 220 sends data including a value 
indicating the creation of an area and the coordinate 
values respectively of upper-left and lower-right 
corners of the new area to the management program 120. 

In the management program 120, the 
communication block 123 receives the data sent from the 
management console program 220 and then transfers the 
received data to the command process block 121. The 
block 121 analyzes the received data. If the creation 
of the area is confirmed, the command process block 121 
starts the processing of the flowchart 8000. 

In step 8001, the command process block 121 
makes a search through the table 3100 to create a list 
of identifiers of computer port symbols contained in 
the rectangle of the new area having the diagonal drawn 
from the upper-left corner to the lower-right corner, 
and temporarily storage the list in the memory 12. The 
list will be referred to as "hosts" hereinbelow. 

In step 8002, the command process block 121 
similarly creates, as in step 8001, a list of 
identifiers of storage device port symbols contained in 
the new area and temporarily storage the list in the 
memory 12. The list will be referred to as "stors" 
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hereinbelow. 

In step 8003, the command process block 121 
similarly creates, as in step 8001, a list of 
identifiers of logical unit symbols contained in the 
new area and temporarily storage the list in the memory 
12. The list will be referred to as "lus" hereinbelow. 

In step 8004, to record the new area in the 
table 3100, the command process block 121 adds to the 
table 3200 a record including a new identifier assigned 
to the new area, a range thereof, a name thereof to be 
displayed on the screen, and a value indicating 
validity of the new area. The identifier to be 
assigned to the new area is appropriately selected by 
the command process block 121, the identifier being not 
used in the table 3200. The name of the new area to be 
displayed on the screen may be inputted by the user to 
a dialog box displayed by the management console 
program 220 or may be appropriately generated by the 
command process block 121. 

In this regard, the new area is assumed as a 
valid area because the procedure IsAccessibleTo is 
executed in step 8007. The procedure is used to 
determine whether or not a logical unit can be accessed 
from a computer port. The area for the determination 
is limited to a valid area. Therefore, the new area is 
temporarily recorded as a valid area in the table 3200. 
Whether or not the new area is valid is later verified 
in step 8007. If it is determined that the new area is 
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invalid, the validity flag of the record added to the 
table is updated to invalidate the new area. 

In step 8005, to record information that 
identifiers of the symbols contained in the hosts, 
stors, and lus lists are contained in the new area, the 
command process block 121 adds to the table 3300 a 
record for each symbol identifier including a new 
identifier assigned in step 8004 to the new area and 
the symbol identifier. 

In step 8006, the command process block 121 
makes a search through the table 3600 to obtain a 
logical unit symbol which is identified by the logical 
unit symbol identifiers contained in the lus list and 
which has not a path to any storage device port symbol 
identified by the storage device port symbol 
identifiers contained in the stors list. The block 121 
creates a list of the logical unit symbol identifiers 
and temporarily stores the list in the memory 12. The 
list will be referred to as "nopathlus" hereinbelow. 

In step 8007, the command process block 121 
search for computer port symbol which is identified by 
the computer port symbol identifiers contained in the 
hosts list and which cannot access on the screen to any 
logical unit symbol identified by the logical unit 
symbol identifiers contained in the hopathlus list. 
Specifically, for each identifier of the computer port 
symbol contained in the hosts list, the command process 
block 121 executes the procedure IsAccessibleTo using 
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the identifier of the computer port symbol and the 
nopathlus list as parameters to determine whether or 
not "false" results from the procedure. If "false" 
results for any one of the identifiers of the computer 
port symbols, the command process block 121 assumes 
that the new area is invalid and sets the validity flag 
of the fourth item in the record of the new area in the 
table 3200 to indicate that the new area is invalid. 
Then, control goes to step 8010. If "false" does not 
result, control goes to step 8008. 

In step 8008, if the new area contains at 
least two computer port symbols or two storage device 
port symbols, the command process block 121 creates a 
zone corresponding to the new area. Specifically, if 
the host and stors lists contain two or more symbol 
identifiers, the command process block 121 executes the 
procedure CreateZone using a list of the symbol 
identifiers contained in the host and stors lists and 
an identifier assigned to the new area for the fabric 
switch 4 as parameters. This indicates the setting 
block 127 to create a new zone. The identifier 
assigned to the new area for the fabric switch 4 may be 
appropriately selected by the command process block 121 
or may be inputted by the user to a dialog box or the 
like displayed by the management console program 220. 

To the created zone, the command process 
block 121 appropriately assigns a zone identifier for 
use in the management program 120 and then adds to the 
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table 3500 a record including the assigned zone 
identifier, and an identifier of an area corresponding 
to the zone, and the identifier of the zone for the 
fabric switch 4 . 
5 In step 8009, the command process block 121 

sets the LUN security such that the computer port 
indicated by each computer port symbol contained in the 
new area can access each logical unit symbol contained 
in the new area. Specifically, for each identifier of 

10 the computer port symbol contained in the hosts list, 
the command process block 121 obtains an identifier of 
a computer port corresponding thereto from the table 
3100. Using as parameters the obtained identifier of 
the computer port and a list of the identifiers of the 

15 logical unit symbols contained in the lus list and the 
identifiers of the logical units corresponding thereto, 
the command process block 121 executes the procedure 
AllowToAccess to indicates the setting block 127 to a 
new setting operation for the LUN security. 

20 After the processing of step 8009 is 

completely finished, the command process block 121 
notifies the validity of the new area via the 
communication block 127 to the management console 
program 220 and then terminates the processing. When 

25 control goes from step 8007 to 8010, the command 

process block 121 notifies the invalidity of the new 
area to the management console program 220. According 
to the notification, the program 220 draws the new area 
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as a valid area or an invalid area on the screen 1000. 

Next, description will be given of processing 
when the user conducts operation to invalidate an area. 

In the embodiment, the user can conduct 
operation to invalidate an area on the screen 1000. 
However, when another area becomes invalid as a result 
of the invalidation of an area, the management program 
120 invalidates the user's operation as in the symbol 
moving operation. 

Another area becomes invalid as a result of 
the invalidation of an area in the following case. In 
a case in which a computer port symbol and a storage 
device port symbol contained in an area to be 
invalidated by the user commonly belong only to the 
area to be invalidated, when the area is invalidated, 
connectivity between the computer port symbol and the 
storage device port symbol is lost. In this situation, 
if the computer port symbol of which connectivity to 
the storage device port symbol is lost can access on 
the screen 1000, via an area other than the area to be 
invalidated, the logical unit symbol having a path to 
the storage device port symbol, the area for which the 
accessibility is guaranteed becomes an invalid area 
because connectivity is lost between the storage device 
port symbol and the computer port symbol. 

In the embodiment, the user's operation to 
invalidate an area and the operation of the management 
console program 220 are as follows. Assume that the 
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management console program 220 has the table 3200 of 
the management program in advance. First, the user 
operates the pointing device 25 to move the cursor 1070 
to a position in a desired area on the screen 1000 and 
then depress a button 25b. The GUI process block 223 
of the management console program 220 records 
coordinate values of the cursor 1070 on the screen 1000 
when the user depresses the button 25b. 

Next, the GUI process block 223 displays a 
menu containing a display item "invalidate area" on the 
screen 1000. The user selects "invalidate area" from 
the displayed menu to indicate the management program 
to invalidate a desired area. When the management 
console program 220 detects that the selected item is 
"invalidate area", the program 220 makes a retrieval 
through a table which is beforehand acguired and which 
has the contents equal to those of the table 3200 of 
the management program 120 to thereby select an area 
containing the coordinate values recorded when the menu 
is displayed. If two or more areas contain the 
coordinate values, the management console program 220 
displays a dialog box presenting names of the areas to 
such that the user selects one of the areas to be 
invalidated . 

When the invalidation of the area is 
indicated by the user's operation as above, the 
management console program 220 sends data including a 
value indicating the invalidation of the area and an 
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identifier of the are to be invalidated via the 
communication unit 7 to the management program 12 0. 
Processing of the management program 120 when the user 
indicates invalidation of an area is shown in a 
5 flowchart 9000 of Fig. 23. 

In the management program 120, the data sent 
from the management console program 22 0 is received by 
the communication block 123 to be sent to the command 
process block 121. When the block 121 detects that the 
10 invalidation of an area is indicated, the block 121 
executes processing of the flowchart 9000. 

In step 9001, the command process block 121 
refers to the table 3300 to create a list of 
fil identifiers of computer port symbols contained in the 

15 area to be invalidated and temporarily stores the list 
in the memory 12. The list is referred to as "hosts" 
hereinbelow. 

In step 9002, the command process block 121 
refers to the table 3300 to create a list of 
20 identifiers of storage device port symbols contained in 
the area to be invalidated and temporarily stores the 
list in the memory 12. The list is referred to as 
"stors" hereinbelow . 

In step 9003, the command process block 121 
25 refers to the table 330 to create a list of identifiers 
of logical unit symbols contained in the area to be 
invalidated and temporarily stores the list in the 
memory 12. The list is referred to as "lus" 
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hereinbelow . 

In step 9004, the command process block 121 
accesses the identifiers of the computer port symbols 
contained in the hosts list and the identifiers of the 
5 storage device port symbols contained in the stors list 
and selects therefrom pairs of the respective 
identifies of the computer port symbol and the storage 
device port symbol between which connectivity is 
guaranteed only by the area to be invalidated. The 

10 command process block 121 creates a list of the 

selected pairs and temporarily stores the list in the 
memory 12. The list is referred to as "disconnecting" 
hereinbelow. 

Specifically, for the identifier of each 

15 storage device port symbol in the stors list, command 
process block 121 selects any valid area which contains 
the storage device port symbol indicated by the 
identifier and for which invalidation is not indicated 
and refers to the tables 3100 and 3300 to acquire an 

20 identifier of the valid area. The command process 

block 121 refers to the table 3200 to determine whether 
or not the area contains a computer port symbol 
identified by the computer port symbol identifier 
contained in the hosts list. If there exists a 

25 computer port symbol not contained in any valid area 
thus obtained, the command process block 121 adds a 
pair of the identifier and the storage device port 
symbol identifier to the disconnecting list. 
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In step 9005, the command process block 121 
determines whether or not the operation to invalidate 
the area is valid. For each pair of the computer port 
symbol identifier and the storage device port symbol 
5 identifier in the disconnecting list, the command 

process bl ock 121 refers to the table 3600 to obtain an 
identifier of a logical unit symbol having a path to 
the storage device port symbol identified by the 
storage device port symbol of the pair including the 

10 computer port symbol identifier and the storage device 
port symbol. For each identifier of the logical unit 
symbol, the command process block 121 refers to the 
table 3300 to obtain an identifier of an area which 
contains the logical unit symbol and which is not to be 

15 invalidated. The command process block 121 refers to 
the table 3300 to determine whether or not the area 
contains the computer port symbol paired with the 
storage device port symbol. If the area contains the 
computer port symbol, since the area becomes an invalid 

20 area as a result of the user's operation, the command 

process block 121 invalidates the user's operation, and 
control goes to step 9009. The block 121 notifies the 
invalidity of the user's operation to the management 
console program 220 and terminates the processing. 

25 In step 9006, the command process block 121 

changes the setting of the LUN security for the 
computer ports which cannot access the logical units as 
a result of the invalidation of the area. For each 
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identifier of the logical unit symbols in the lus list, 
the command process block 121 creates a list of 
identifiers of computer port symbols which are 
contained in the hosts list and which can access the 
5 logical unit symbol and then temporarily stores the 
list in the memory 12. 

Specifically, the command process block 121 
refers to the table 3300 to obtain a list of 
identifiers of areas each of which contains the logical 

10 unit symbol and which is not the area to be 

invalidated. The block 121 again refers to the table 
3300 to obtain a list of identifier of computer symbols 
each of which does not belong to any area identified by 
the area identifiers thus obtained and each of which is 

15 contained in the hosts list. The block creates a list 
of identifiers of such computer port symbols for each 
logical unit symbol contained in the lus list. 

Using the list of computer port symbols 
created as above, the command process block 121 

20 indicates the setting block 127 to change the setting 
of the units for the LUN security. Specifically, for 
each identifiers of logical unit symbols contained in 
the lus list, the block 121 refers to the table 3100 to 
create a list of identifiers of computer ports each of 

25 which corresponds to each of identifiers contained in 

the list of computer port symbol identifiers created as 
above. Using the created list and an identifier of the 
logical unit corresponding to the identifier of the 



logical unit symbol as parameters, the command process 
block 121 executes the procedure RemoveAllowedHosts of 
the setting block 127. 

In step 9007, if the area to be invalidated 
has a zone corresponding thereto, the command process 
block 121 removes the zone. Specifically, the block 
121 makes a search through the table 3500 for such a 
zone corresponding to the area to be invalidated. If 
the zone is present, the block 121 executes the 
procedure RemoveZone of the setting block using an 
identifier of the zone for the fabric switch 4. The 
block 121 then removes a record of the removed zone 
from the table 3500. 

Finally, in step 9008, the command process 
block 121 accesses the record of the table 3200 
associated with the area to be invalidated to change 
the value of the third item thereof to indicate the 
invalidation of the area, notifies the normal 
termination of the processing via the communication 
block 123 to the management console program 220, and 
terminates the processing. Having received the 
notification of the normal termination of the area 
invalidation, the program 220 displays the area as an 
invalid area . 

Incidentally, the menu described above may 
include an item displayed as "remove area 1 '. When the 
user selects the menu item, an area is removed. 
However, an area to be removed is an area which can be 



invalidated in the embodiment. Therefore, when the 
menu item "remove area" is selected, the management 
program 120 and the management console program 220 
execute processing to invalidate an area and then 
executes processing to remove the area. 

Specifically, after the processing steps to 
invalidate an area are executed up to step 9007 and the 
area is invalidated, the command process block 121 of 
the management program 120 deletes a record associated 
with the invalidated area in the table 3200, deletes 
all records of which the first item indicates areas to 
be removed in the table 3300, notifies the normal 
termination of the processing via the communication 
block 123 to the management console program 220, and 
terminates the processing. Having received the 
notification of the normal termination of the area 
removal, the program 220 removes the indicated area 
from the image displayed on the screen 100. 

Next, description will be given of an 
operation to change an invalid area to a valid area. 

To validate an invalid area, the symbols 
contained in the invalid area must be consistent with 
each other. When the invalid area to be validated 
contains logical unit symbols and computer port 
symbols, connectivity must exist between all computer 
port symbols must and port symbols having paths to the 
logical unit symbols. 

Description will now be given of when the 



user conducts an area validating operation in the 
screen 1000 to when the setting of units are completed. 
Processing of the command process block 121 when the 
user changes an invalid area to a valid area in a 
flowchart of Fig. 24. 

The user operates the pointing device 25 to 
move the cursor 1070 on the screen 1000 to a position 
in an area to be validated and then depresses the 
button 25b of the pointing device 25. Having detected 
the depression of the button 25b, the management 
console program 220 records the position of the cursor 
1070 at the depression of the button 25b and displays a 
menu including an item "validate area" in the vicinity 
of the cursor 1070 on the screen 1000- The user 
selects "validate area" in the menu to indicate the 
management console program 220 to validate the area 
containing coordinate values of the position of the 
cursor 1070. 

When a plurality of invalid areas contain the 
point indicated by the coordinate values of the cursor 
1070, the management console program 220 requests the 
user to select an invalid area, namely, displays a 
dialog box for the user to select one of the invalid 
areas and then terminates the processing. 

When the user selects one invalid area to be 
validated, the management console program 220 sends to 
the management program 12 0 data including a value 
indicating the validation of the area and an identifier 
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of the area to be validated. It is assumed that the 
identifier of the area is determined according to data 
equal to that of the table 3100 obtained from the 
management program bythe management console program 220 
in advance. 

In the management program 120, the 
communication block 123 receives the data sent from the 
management console program 220 and passes the data to 
the command process block 121. 

The block 121 analyzes the received data. 
When the indication of the area validation is detected, 
the block 121 starts the processing of the flowchart 
1000. 

In step 10001, the command process block 121 
refers to the table 3300 to create a list of 
identifiers of computer port symbols contained in the 
area to be validated, and temporarily stores the list 
in the memory 12. The list is referred to as "hosts" 
hereinbelow . 

In step 10002, the command process block 121 
refers to the table 3300 to create a list of 
identifiers of storage device port symbols contained in 
the area to be validated, and temporarily stores the 
list in the memory 12. The list is referred to as 
"stors" hereinbelow . 

In step 1003, the command process block 121 
refers to the table 3300 to create a list of 
identifiers of logical unit symbols contained in the 
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area to be validated, and temporarily stores the list 
in the memory 12. The list is referred to as "lus" 
hereinbelow. 

In step 10004, to temporarily validate the 
5 invalid area to be validated, the command process block 
121 changes the validity flag in the fourth item of the 
record associated with the area to indicate that the 
area is valid for the following reasons. That is, in 
step 10005, to determine whether or not each computer 
10 port symbol identified by the identifiers of computer 
port symbols in the hosts list can access on the screen 
each logical unit symbol identified by the identifiers 
of logical unit symbols in the lus list, the area to be 
validated must be validated in advance. 
15 In step 10005, whether or not the area can be 

validated. This is specifically achieved as follows. 
For each identifier of the computer port symbols in the 
hosts list, the command process block 121 executes the 
procedure IsAllowedFor using the identifier of the 
20 computer port symbol and the lus list. 

If the procedure results in "false" for any 
one of the identifiers of computer port symbols, it is 
assumed that the computer port symbol cannot access the 
logical unit symbol on the screen and hence the area 
25 cannot be validated. In this case, control goes to 
step 10008 in the command process block 121. 
Conversely, when it is confirmed that the computer port 
symbols identified by the identifiers of computer port 
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symbols in the hosts list can access on the screen the 
logical unit symbols identified by the identifiers of 
logical unit symbols in the lus list, control goes to 
step 10006 in the command process block 121. 

In step 10006, if it is required to create a 
zone corresponding to the area to be validated, the 
command process block 121 creates the zone. Processing 
to create the zone is similar to that of step 8008 to 
create an area. 

In step 10007, for all logical units 
corresponding to the identifiers of logical unit 
symbols in the lus list, the command process block 121 
sets the access allowance of the LUN security such that 
the logical units can be accessed from computer ports 
corresponding to the identifiers of computer port 
symbols in the hosts list. This processing is similar 
to that of step 8009 to create an area. 

If it is confirmed that the validation of the 
area is appropriate in step 10005, the command process 
block 121 notifies, after completely executing the 
processing of step 1007, the normal termination of the 
processing to the management console program 220, and 
terminates the processing. 

If it is confirmed that the validation of the 
area is not appropriate in step 10005, the command 
process block 121 executes step 10008 after step 10005. 
In step 10004, the block 121 restores the state of the 
table 3200 changed by the step 1004 to the original 
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state. That is, the block 121 changes the validity 
flag in the third item of the record associated with 
the area to be validated in the table 3200 such that 
the validity flag indicates that the area is invalid. 
5 Thereafter, the block 121 notifies denial of the 

validation of the area via the communication block 123 
to the management console program 220 and then 
terminates the processing. 

Having received the notification of the 

10 normal termination of the processing from the 

management program 120, the management console program 
220 displays as a valid area the area for which 
validation was indicated. 

Description will now be given of processing 

15 when the user changes the size or position of a valid 
area on the screen 1000. 

To change the size of an area, the user 
operates the pointing device 25 to move the cursor 1070 
to a position on a boundary of a desired area on the 

20 screen 1000. The user then depresses the button 25a of 
the pointing device 25, operates the pointing device 25 
with the button 25a kept depressed to move the cursor 
1070 to a desired position, and releases the button 
25a. During the operation, the display block 222 of 

25 the management console program 220 keeps displaying 
with a broken line a circumference of a rectangle 
determined on the screen when the button 25a is 
released. The area size can be changed by moving an 



edge of the rectangle on which the cursor 1070 exists 
when the user depresses the button 25a, 

If the cursor 1070 indicates a top edge or a 
bottom edge of the area when the user depresses the 
button 25a, the management console program 220 moves 
the edge in a vertical direction in response to user's 
operation of the pointing device 25. If the cursor 
1070 indicates a right or left edge of the area when 
the user depresses the button 25a, the management 
console program 220 moves the edge in a horizontal 
direction in response to user's operation of the 
pointing device 25. If the cursor 1070 is over a 
vertex of the area when the user depresses the button 
25a, the management console program 220 changes the 
size of the area by changing the coordinate values of 
the vertex. 

To change the position of an area, the user 
operates the pointing device 25 to move the cursor 1070 
to a position over a desired area on the screen 1000. 
The user then depresses the button 25a of the pointing 
device 25, operates the pointing device 25 with the 
button 25a kept depressed to move the cursor 1070 to a 
desired position, and releases the button 25a. During 
the operation, the display block 222 of the management 
console program 220 keeps displaying with a broken line 
a circumference of a rectangle indicating a position 
after the movement of the area indicated by the cursor 
1070 when the user depressed the button 25a. 



When the user releases the button 25a, the 
GUI process block 223 determines that the rectangle 
drawn by the broken line is the position of the new 
area. If the coordinate values of the cursor 1070 is 
contained in a plurality of areas when the user 
depresses the button 25a of the pointing device 25, the 
display block 222 of the management console program 220 
displays a dialog box for the user to select an area. 
The user selects a desired area from the dialog box and 
conducts an area moving operation. 

When the user releases the button 25a and the 
new size or position of the area is determined, the 
management console program 220 sends to the management 
program 120 a value indicating the area size or 
position change, an identifier of the area of which the 
size or position is changed, and the coordinate values 
of an upper-left corner and a lower-right corner of the 
area . 

The communication block 123 of the management 
program 120 passes the received data to the command 
process block 121. The block 121 analyzes the received 
data. When the area size or position change is 
detected, the block 121 starts the processing of the 
flowchart 11000 of Fig. 25. 

In step 11001, the command process block 
determines the area of which the size or position is 
changed is a valid area or an invalid area. If the 
area is an invalid area, control goes to step 11002. 
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If the area is a valid area, control goes to step 
11003. 

In step 11002, the command process block 121 
writes the new coordinate values of the upper-left 
5 corner and the lower-right corner of the area in the 
second item of the record in the table 3100 keeping 
information of the area of which the size or position 
is changed. The block 121 makes a retrieval through 
the table 3100 to acquire identifiers of computer port 

10 symbols, computer symbols, and logical unit symbols 

which belong to the area as a result of the area size 
or position change and adds for each thereof a record 
indicating the inclusion thereof in the area to the 
table 3200. Similarly, for each of identifiers of 

15 computer port symbols, computer symbols, and logical 
unit symbols which do not belong to the area as a 
result of the area size or position change, the block 
121 removes a record associated therewith from the 
table 3200. 

20 In step 11003, the command process block 121 

creates an area having an upper-left corner and a 
lower-right corner indicated by the coordinate values 
thereof through the processing of the flowchart 8000. 
If it is necessary to create a zone corresponding to 

25 the created area, the block 121 uses an identifier of 
the zone for the fabric switch 4 to create the zone. 
The identifier is appropriately created by the block 
121 or is inputted from the user through operation of 



the management console computer 2. 

In step 11004, the command process block 121 
determines whether or not the area created in step 
11003 is a valid area. If the area is an invalid area, 
control goes to step 11008 in the block 121. If the 
area is a valid area, control goes to step 11005 in the 
block 121. 

In step 11005, the command process block 121 
tries to remove, according to the processing of the 
flowchart 9000, the area of which the size or position 
is changed. However, the block 121 does not reflect 
the removal of the area on the screen 1000. 

In step 11006, the command process block 121 
determines whether or not the area of which the size or 
position is changed is removed. If the area cannot be 
removed, control goes to step 11008 in the block 121. 
If the area can be removed, control goes to step 11007 
in the block 121. 

In step 11007, when the created area has a 
zone corresponding thereto and a zone corresponding 
thereto before the removal of the area, the command 
process block 121 executes the procedure CreateZone to 
create a new zone containing ports which are the same 
as those corresponding to the created zone. An 
identifier of the new zone thus created may be an 
identifier of the zone for the fabric switch 4, the 
zone corresponding to the removed area before the 
removal of the area. Or, the identifier may be 



inputted in step 11003 from the user through operation 
of the management console computer 2. 

The command process block 121 executes the 
procedure RemoveZone to remove a zone corresponding to 
the created area. However, this processing is executed 
to equalize an identifier of the zone corresponding to 
the created zone to an identifier of the zone for the 
fabric switch 4, the zone corresponding to the removed 
area. Therefore, if there exists an alternative 
method, the method may be used. Or, the processing 
need not be necessarily executed. 

After the processing is completed up to step 
11007, the command process block 121 notifies the 
normal termination of the processing to the management 
console program 220 and terminates the processing. 

In step 11008, the command process block 121 
removes the area created by step 11003 according to the 
processing of the flowchart 8000, notifies invalidity 
of the user's operation to the management console 
program 220 and terminates the processing. 

Having received the notification of the 
normal termination of the processing, the management 
console program 220 displays the area of which the size 
or position is changed, according to the new size or 
position on the screen 1000. If the notification is 
not received, the management console program 220 
displays the area of which the size or position is 
changed, according to the original size or position. 
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Description has been given of embodiments of 
the present invention. In the embodiments, when a 
valid area becomes an invalid area as a result of a 
user T s operation, the operation is regarded as invalid 
However, it is also possible that the operation to 
change a valid area to an invalid area is regarded 
valid. In such a case, an "execute" button 1090 and a 
"cancel" button 1091 are added to the screen 1000. 
Fig. 26 shows a layout of the screen 2000 implemented 
by adding the "execute" button 1090 and the "cancel" 
button 1091 to the screen 1000. 

The user successively conducts movement of a 
plurality of symbols and operations for areas on the 
screen 2000. In the process, when a valid area 
displayed on the screen 2000 becomes invalid, the 
display block 222 displays the area as an invalid area. 
Conversely, when an invalid area displayed on the 
screen 2000 becomes valid, the display block 222 
displays the area as a valid area. After the sequence 
of operations are completed, the user clicks the 
"execute" button 1090. That is, the user operates the 
pointing device 25 to move the cursor 1070 over the 
"execute" button 1090 and depresses and then releases 
the button 25a of the pointing device 25. In the 
operation, the management console program 220 notifies 
changed positions of the screen 2000 caused by the 
sequence of the user's operations to the management 
program 120. 



The program 120 changes the configuration of 
the computer system 80 according to the change of the 
screen 2000. However, if an invalid area is being 
displayed on the screen 2000 when the user clicks the 
"execute" button 1090, the management console program 
220 does not notify the changed positions of the screen 
2000 to the management program 120. When the user 
starts operation and at least an invalid area exists in 
the screen 2000, the management console program 220 
displays the "execute" button in a light color 
indicating that the click of the "execute" button is 
invalid. The user can recognize that the operation 
sequence is in process if the "execute" button is in a 
light color or if an invalid area exists on the screen 
2000. 

When the user clicks the "cancel" button 
during the operation sequence, the display block 222 
restores the state of the screen 2000 to the state 
before the user's operation and displays the "execute" 
button in a light color. 

In the embodiments described above, the 
management object is a computer system 8 0 using a fibre 
channel as a unit to access a storage area. However, 
the present invention is also applicable to a computer 
system using an internet protocol as a method to access 
the storage area. 

In such a computer system using an internet 
protocol as a method to access the storage area, it is 



possible to manage a virtual local area network (VLAN) 
of the ethernet in a method similar to the zoning 
method. It is also possible to manage a storage device 
having an internet small computer system interface 
(iSCSI) function in a manner similar to that of the LUN 
security. In this case, to identify ports of a 
computer and a storage device, an identifier address 
and/or an internet protocol (IP) address of a network 
interface adapter of the computer and/or the storage 
device is/are used in place of the worldwide name 
(WWN) . Moreover, the present invention is also 
applicable to a computer system using the fibre channel 
and the internet protocol at the same time to access a 
storage area. 

According to the present invention, it is 
possible to provide a security management program in a 
storage network in which it is not necessary for the 
user to pay attention to two security levels of the 
zoning and the LUN security. The management program 
provided by the present invention relieves the user of 
the operation for the respective units connected to the 
storage network. 

According to the present invention, even when 
the setting of the units connected to the storage 
network becomes inconsistent as a result of a user's 
operation, the management program beforehand detects 
the inconsistency. This consequently prevents a user's 
wrong setting of the units connected to the storage 
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network. 

While the present invention has been 
described with reference to the particular illustrative 
embodiments, it is not to be restricted by those 
5 embodiments but only by the appended claims. It is to 
be appreciated that those skilled in the art can change 
or modify the embodiments without departing from the 
scope and spirit of the present invention. 



